easyJet subjected to cyber-attack

easyJet has revealed it has been the subject of a cyber-attack from a “sophisticated source” hitting nine million passengers.

The email address and travel details of approximately nine million customers were accessed during the breach and the credit card details of over 2,000 passengers were accessed.

easyJet said that action has already been taken to contact all of the latter subset of customers, and they have been offered support.

easyJet chief executive, Johan Lundgren, said that they will take the cyber security of their systems very seriously and have robust security measures in place to protect their customers’ personal information. But this is an evolving threat as cyber attackers get ever more sophisticated.

He went on saying that since they became aware of the incident, it has become clear that owing to Covid-19 there is heightened concern about personal data being used for online scams.

On the recommendation of the Information Commissioner’s Office (ICO), they are contacting those customers whose travel information was accessed and they are advising them to be extra vigilant, particularly if they receive unsolicited communications.

easyJet had notified the National Cyber Security Centre, while the breach in security had been closed off.

Jeremy Hendy, chief executive of Skurio, said that customers of easyJet should be changing security information for web accounts or app usage immediately as a precaution and monitor their bank account for fraudulent activity.

Customers should remain wary of any correspondence they receive by email or text message as they previously noted that criminals use these types of incidents to slip phishing attempts under the radar.

They do it by recycling contact details from historic breaches and hoping worried customers will let their guard down.